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Listing of Claims : 



1. 



(currently amended) A method for scanning network devices 



connected to a network, comprising: 

(a) detecting connection of a first network device to the network; and 

(b) performing remote agentless scanning of the first network device 

i 

automatically in response to detection of the first network device to thereby avoid 
downloading a software agent to the first network device . 



2. (original) The method of claim 1 wherein step (a) further comprises 
inspecting data packets communicated over the network. 

3. (original) The method of claim 1 wherein the detecting step further 
comprises querying a database. 



4. (original) The method of claim 3 further comprising continuously 
broadcasting pings on the network, continuously examining address resolution 
protocol tables, continuous y monitoring event logs, transmitting a Lightweight 

Directory Access Protocol (LDAP) query, and transmitting a Domain Name System 

i 

query. 



5. (original) The method of claim 1 wherein step (b) further comprises 
determining at least one ofwhether the first network device is plugged into a wall 
socket, whether the first network device is connecting to the network via wireless 
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access, and whether the first network device is connecting to the network via wireless 
access, and whether the first network device is connecting to the network via a 
Virtual Private Network. 



6. (original) The 



method of claim 1 wherein step (b) further comprises 



determining a property of the first network device. 

7. (original) The, method of claim 1 wherein step (b) further comprises 
determining a property of the first network device. 

8. (original) The| method of claim 7 wherein the determining of the identity 
of the first network device further comprises at least one of querying a database 
where the type has been determined, examining network traffic, analyzing network 
behavior, probing the first network device for signature responses, attempting to log 
into the device using a series of protocols, logging into the first network device and 
querying data within the device. 



9. (original) The 
scanning at least one of a 
inventory, hardware, and a 



method of claim 1 wherein step (b) further comprises 
configuration, file, data, a software version, a patch, 
security vulnerability of the first network device. 
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10. (original) The 



method of claim 1 wherein step (b) further comprises 



updating at least one of a configuration, file, data, a software version, inventory, and 

| 

a security vulnerability of the first network device. 



11, (original) The 
comparing at least one 
predetermined security sett 



method of claim 1 wherein step (b) further comprises 
security setting of the first network device with a 
ng. 



12. (original) The 
least one of installing a softp 
software on the first network 
of a windows domain. 



method of claim 1 wherein step (b) further comprises at 
are patch on the first network device, installing anti-virus 
device, and determining if the first network device is part 



13. (original) The method of claim 1 further comprising at least one of 
enabling the first network d 3vice to have additional access to the network, denying 

the first network device access to the network, notifying another about the first 

i 

network device based on results of the scan, and quarantining the first network 
device. 



14. (original) Th«> 
setting a security policy on 
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method of claim 1 further comprising at least one of 
the first network device, auditing the security policy of the 
first network device, ensuring compliance with a predetermined security policy, and 
reporting results. 
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15. (currently 
network devices on a 

(a) a detecting 
network; and 

(b) a scanning modiile 
network device automatical 
to thereby avoid download 



amended) An apparatus for remote agentless scanning of 
netwqrk comprising: j 

modiile that detects connection ofa first network device to the 



16, (original) The 
continuously polls a database 

devices. 



17. (original) The 
remotely scans the first 
network device in the database 



18. (original) The 
database storing scan resu 



19. (original) The 
at least one of enable the 
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that performs remote agentless scanning of the first 
y in response to the detection of the first network device 
a software agent to the first network device . 



apparatus of claim 1 5 wherein the detecting module 
for data corresponding to newly attached network 



apparatus of claim 16 wherein the scanning module 
netWork device upon detecting data corresponding to the first 



apparatus of claim 15 further comprising a history 

! 

ts of a scan performed by the scanning module. 



first 



apparatus of claim 15 wherein the scanning module can 
network device to have additional access to the 
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network, deny the first 
the first network device 
device. 



network device access from the network, notify another about 
basfed on results of the scan, and quarantine the first network 



20. (original) The 
management module for at 
device, auditing the security 
with a predetermined secur 



apparatus of claim 15 further comprising a security policy 
east one of setting a security policy on the first network 
policy of the first network device, ensuring compliance 
ty policy, and reporting results. 



21 . (currently amended) A method for examining a first network device 
connected to a network, comprising: 

(a) querying a database for data representing connection of network devices 
to a network; 

(b) determining connection of a first network device to the network by locating 
data about the first network device in the database; 

(c) determining properties associated with the first network device to 
determine the identity of the first network device; 

(d) determining iterr s to scan based on at least one of the properties; and 

(e) performing remc te aaentless scanning of the first network device 
automatically in response to the determination of the connection of the first network 
device to the network to thereby avoid downloading a software agent to the first 



network device. 
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22. (original) The 
determining at least one of 
type of the first network device 



method of claim 21 wherein step (c) further comprises 
Credentials associated with the first network device and 



23. (original) The 
least one of querying a 
examining network traffic, 
signature responses, and 



method of claim 21 wherein step (c) further comprises at 
database where the identity has already been determined, 
analyzing network behavior, probing the device for 
logging into the device to query data. 



24. (original) The 
selecting a set of security 



pol 



25. (original) The: 
allowing the first network 
access to the network, notifying 
results of the remote 



26. (canceled) 
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icy settings to audit. 



method of claim 21 further comprising at least one of 
device to have additional access to the network, denying 
another about the first network device based on 
scanrting, and quarantining the first network device. 
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